101 to 125 of 508 Incident Response Jobs in the UK excluding London

Lead independent, risk-based assurance and oversight of cyber and data security risk. Provide insight and challenge across key domains like IAM, endpoint security, incident response and more. Oversee frameworks for identifying, assessing, and reporting cyber and information risks. What you’ll bring: A solid grounding in cybersecurity … or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . More ❯

Lead independent, risk-based assurance and oversight of cyber and data security risk. Provide insight and challenge across key domains like IAM, endpoint security, incident response and more. Support enterprise-wide risk communication and reporting to drive good decisions and strong risk culture. Oversee frameworks for identifying, assessing … or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . Excellent stakeholder engagement skills - you'll work closely with leaders across the business. More ❯

Lead independent, risk-based assurance and oversight of cyber and data security risk. Provide insight and challenge across key domains like IAM, endpoint security, incident response and more. Support enterprise-wide risk communication and reporting to drive good decisions and strong risk culture. Oversee frameworks for identifying, assessing … or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . Excellent stakeholder engagement skills—you’ll work closely with leaders across the business. More ❯

cybersecurity team. The ideal candidate will be responsible for designing, implementing, and maintaining our customers Elastic SIEM infrastructure to ensure robust security monitoring and incident response capabilities. Embedded with an existing Customer SOC, you will provide Engineering support and expertise for the customers Elastic SIEM implementation, working alongside … real-time monitoring and analysis of security events. Data Integration : Integrate various data sources into Elasticsearch, ensuring data quality and consistency through ETL processes. Incident Response : Investigate and respond to security incidents, leveraging Elastic SIEM capabilities to identify and mitigate threats. Performance Optimization : Monitor and optimize the performance More ❯

methodologies within various GTIS teams. This is a hands-on engineering role where you will design, build, and optimise automation frameworks, observability tools, and incident response mechanisms. This role also involves collaborating across GTIS and CTO, engaging with storage, data, and other product teams. You will act as … Programming and Scripting - This includes expertise in languages such as Python, Powershell, or Go, which are essential for automating routine tasks and system deployments. Incident Management and Troubleshooting - The ability to manage incidents effectively, troubleshoot issues swiftly, and perform root cause analysis to prevent future incidents. Systems Engineering and … be based in Knutsford (Radbroke Hall) or Glasgow Campus . Purpose of the role To apply software engineering techniques, automation, and best practices in incident response, to ensure the reliability, availability, and scalability of the systems, platforms, and technology through them. Accountabilities Availability, performance, and scalability of systems More ❯

Join us as a Security Engineer to help detect threats, improve incident response, and meet compliance requirements by designing, implementing, and maintaining the security of computer systems and networks, identifying vulnerabilities, responding to incidents, and collaborating with other teams to ensure a secure environment. To be successful as … writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/GitLab). Security Fundamentals (threat detection, incident response, threat intel; knowledge of the MITRE ATT&CK framework and security operations). Some other highly valued skills may include: Scripting - Python … securely generated, stored, and used. Execution of audits to monitor, identify, and assess vulnerabilities in the bank's infrastructure/software and support the response to potential security breaches. Identification of advancements to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including More ❯

their industry, with exciting scope for expansion into further industries. This role is looking for someone to work within the SRE team responsible for incident response and issue resolution. Location: Cambridge Salary: £32,000 £60,000 + excellent benefits (£32,000 for a new Graduate) Requirements for Site … University in a STEM subject A minimum of ABB at A-Level or international equivalent if applying at Graduate level Experience working in an incident response or 3rd line technical support environment Brilliant communication skills this role is a highly interactive role Ideally, you will have knowledge of More ❯

for expansion into further industries. This role is looking for a Graduate or experienced SRE professional to work within the SRE team responsible for incident response and issue resolution. Location: Cambridge Salary: £32,000 - £70,000 per annum + excellent benefits including private healthcare (could be more available … University in a STEM subject A minimum of AAB at A-Level or international equivalent if applying at Graduate level Any experience working an incident response or technical support environment would be beneficial (could be as intern/year in industry etc) Brilliant communication skills - this role is More ❯

Join us as a Security Engineer to help detect threats, improve incident response, and meet compliance requirements by designing, implementing, and maintaining the security of computer systems and networks, identifying vulnerabilities, responding to incidents, and collaborating with other teams to ensure a secure environment. To be successful as … writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/GitLab). Security Fundamentals (threat detection, incident response, threat intelligence; knowledge of the MITRE ATT&CK framework and security operations). Some other highly valued skills may include: Scripting - Python More ❯

senior role where you will be responsible for overseeing cyber security operations, with a particular focus on privileged access management, identity access governance, and incident response across my client’s banking arm and securities business under a dual-hat arrangement. Role Responsibilities: Lead and oversee Privileged Access Management … NIST, FFIEC, FCA regulations). Proficiency in SQL, PowerShell, and automation scripting for security operations. Experience working with SIEM solutions (e.g., Splunk) and incident response processes. Strong knowledge of REST/SOAP web services, Java/JSP, and secure development best practices. Hands-on experience managing Linux/ More ❯

improving, this role offers the ideal opportunity to make a lasting impact. As an IT Service Manager, you’ll play a central role in incident response , service monitoring, and process optimisation, while maintaining a strong focus on governance, audit compliance, and communication. This is a hands-on role … insight, and operational rigour all come into play. What you’ll be doing: Managing system reliability, scalability, and performance through monitoring and automation Leading incident response and resolution efforts, including stakeholder updates and post-incident reviews Driving continuous improvement initiatives based on data, feedback, and audit insights More ❯

our engineering operations, bringing together SRE principles and modern platform engineering practices. This includes combining principles of SRE - such as service-level reliability, observability, incident response - with platform engineering practices like GitOps, Infrastructure as Code, DevSecOps automation, and self-service enablement, to help development teams ship faster, safer … efficiently. What you'll be doing: Designing and operating highly reliable, scalable, and secure Azure-based platforms Applying SRE principles like SLOs, observability, and incident management to drive service reliability Building Infrastructure as Code using Terraform (v1.7+) and GitOps workflows Enabling teams through platform tools, reusable Terraform modules, and … Functions, Logic Apps, etc.) Improving monitoring and alerting with Datadog, Grafana, ELK, and proactive failure detection Participating in the on-call rota and leading incident response workflows and blameless postmortems Coaching engineers, upskilling teams, and contributing to a culture of continuous improvement Driving cost awareness through FinOps practices More ❯

infrastructure and operations teams to integrate security into network, identity and virtualisation platforms. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO … ESXi and virtual machine infrastructure. Lead firewall rule audits, optimisation and policy enforcement. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO More ❯

responsibilities include integrating external supplier APIs, implementing Software Reliability Engineering (SRE) best practices, and ensuring seamless collaboration across teams. The team enhances resilience, observability, incident management, and disaster recovery (DR) practices while working closely with Peri Pantry, Stock Management, and Accounting, Banking, and Property (ABP) teams. Key Responsibilities Technical … Solution Design : Ensure the right technologies and architectures are used to enhance system performance, maintainability, and security. Observability & Resilience : Establish best practices for monitoring, incident response, and disaster recovery. Best Practices & Governance : Define engineering standards and drive their adoption across teams. Vendor & API Management : Oversee integrations with third … Product and Head of Engineering to define and implement a strategic roadmap for stock systems. Team Mentorship : Support engineers in developing their technical skills. Incident Management : Ensure effective post-mortem reviews and embed reliability best practices into development processes. Skills & Experience Proven experience leading engineering teams in designing and More ❯

ll spearhead the evolution of our digital landscape, driving innovation and excellence. This role involves applying software engineering techniques, automation, and best practices in incident response to ensure the reliability, availability, and scalability of our systems, platforms, and technology. Key skills and experience required include: Oracle Enterprise Manager … cross-functional teamwork This role is based at our Knutsford campus. Purpose of the role: To utilize software engineering, automation, and best practices in incident response to maintain system reliability, availability, and scalability. Accountabilities include: Ensuring system performance and scalability through monitoring, maintenance, and capacity planning Responding to More ❯

Yesterday job requisition id R-150789 Senior Security Threat Hunter- Salary £60,000 - £70,000 DOE. A fantastic opportunity has arisen with the Cyber Incident Team for a Senior Security Threat Hunter to join the team. If you feel you have the experience and skills required then we would … diverse set of infrastructures/platforms utilising leading security platforms and tools utilising your own research and input from other teams within Aviva. Lead incident response activities escalated to Tier 3 and engage with security teams and business stakeholders to mitigate risk and ensure that Aviva's customers … the service they offer meets and maintains our high quality and standards, offering your guidance and understand the impact to Aviva if a cyber incident occurs within their estates. Supporting the wider business with your experience and expertise along with representing the threat hunting team on internal projects when More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

edge/deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification/intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

Company: Marsh Description: We have a fantastic opportunity for a talented individual to join Marsh in our Cyber Claims and Incident Management team in London. This is a hybrid role that has a requirement to work three days per week in the office. The role: Cyber Claims Advocate Marsh … is seeking a dedicated Cyber Claims Advocate to join our dynamic Cyber Claims and Incident Management Team. This is an exciting opportunity for Claims Specialists or individuals with 1-3 years of experience in Cyber Claims to enhance their career in a fast-paced environment. This role offers the … and excess insurers, advocating for clients through submissions and escalation meetings as necessary. Respond to client and broker queries regarding policy coverage and cyber incident response pre-incident/loss. Assist in managing vendor relationships and creating visually appealing content and presentations. What you need to have More ❯

robust risk management framework, proactively identifying, assessing, and mitigating cybersecurity risks in alignment with business goals. Define standards for operational security including vulnerability management, incident detection and response, threat intelligence, and third-party/vendor security management. Act as the key internal and external security spokesperson, confidently communicating … track record of building and embedding security awareness and risk management frameworks across business and technical teams. Strong operational experience, including establishing and managing incident response, vulnerability management, and security monitoring programs. Ability to communicate complex security topics clearly to non-technical stakeholders, influencing executives, customers, and teams. More ❯

of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum … using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents. Categorise all suspected incidents in line with the Security Incident policy Recognise potential, successful and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary information. … Write up high quality security incident tickets using a combination of existing knowledge resources and independent research. Assist with remediation activities and conduct permitted remediation (or support customer stakeholders) to inhibit cyber-attacks, clean up IT systems and secure networks against repeat attacks. Produce security incident review reports More ❯

Northern Ireland BT1 4GF Responsibilities Support a 24/7/365 Security Operations Center and monitor security tools Provide Tier 1 and 2 response to security incidents Respond to cybersecurity events and incidents caused by internal and external threats to our clients, coordinate response activities with various … stakeholders, and recommend mitigation strategies Handle incidents as defined in playbooks and standard operating procedures, and advise on remediation actions Perform deep-dive incident analysis by correlating data from various sources and determine if a critical system or data set is affected Identify and design use case algorithms Assist … management software such as ServiceNow Familiarity with data visualization platforms such as Domo Some experience with system hardening guidance and tools Experience on an incident response team performing Tier I/II initial incident triage, desired Experience supporting clients and serving as a technical advisor Ability to More ❯